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Abstract 

Let f(X,Y) £ Z[X,Y] be an irreducible polynomial over Q. We give a Las Vegas absolute 
irreducibility test based on a property of the Newton polytope of /, or more precisely, of / modulo 
some prime integer p. The same idea of choosing a p satisfying some prescribed properties together 
with LLL is used to provide a new strategy for absolute factorization of f(X,Y). We present 
our approach in the bivariate case but the techniques extend to the multivariate case. Maple 
computations show that it is efficient and promising as we are able to factorize some polynomials 
of degree up to 400. 

Keywords: Absolute factorization, modular computations, LLL algorithm, Newton polytope. 



Introduction 



Kaltofen's survey papers (jKaltofenl . 11992!) related the early success story of polynomial factorization. 
Since then, crucial progresses have been achie ved : algorithms dey eloped and implemented by Van 
Hoeij and hi s co-worker s in the univariate case ( Belabas et al. , 2004), by Gao and his c o-workers (see 
for instance Gaol (120031 )) , then by Lece rf and his co-worke r s in t he m ultivariate cas e ( Bostan et al 



(|2004h . iLeced (|2007f )T IChezd (|2004bf ). ICheze and Lecerj (j2007l) and iLecerj (j2007l ) also improved 
drastically the multivariate absolute factorization (i.e. with coefficients in the algebraic closure): they 
produced an algorithm with the best known arithmetic complexity. Even if the situation evolved 
rapidly, there is still room for improvements and new points of view. 

Here, we focus on absolute factor iz ation of rat i onally irreducible polynomial s with integer coef- 
ficients (see Cheze and Galligol (|2005l) . iRupprechtl (|2004T i. ISommese et~ai1 (|2004l) and the references 
therein ). For such pol ynomials, the best current algorithm and implementation is Cheze's (jCheze 
(|2004ah . lGhiiel (|2004bh l presented at Issac'04, it is based on semi-numerical computation, uses LLL 
and is implemented in Magma. It can factorize polynomials of high degrees, up to 200. One of the 
challenges is to improve its capabilities at least in certain situations. 

We propose yet another strategy and algorithm to deal with (multivariate) absolute irreducibility 
test and factorization. This article will present a simple, but very efficient, irreducibility test. Then 
we extend our strategy to get a factorization algorithm based on modular computations, Hensel 
liftings and recognition of algebraic numbers via p— adic approximation using LLL (as explained in 
von zur Gathen and Gerhard! (|2003h ). 

Our absolut e factorization algorithm can be v iewed as a drast ic improvement of the classical algorithm 
TKTD (see iDvornicich and Traverse! (|l989h . iKaltofenl (|l985l) . iTragerl (|l985h and Section Indeed, 
we replace the computations in an algebraic extension of Q of degree n, the degree of the input 
polynomial, by computations in an extension of the minimal degree s, the number of factors of the 
input polynomial. 



We made a preliminary implementation in Maple and computed several examples. It is very 
promising as it is fast and able to compute the researched algebraic extension for high degree polyno- 
mials (more than degree 200, see last section). The bottleneck of the procedure is now the final x-adic 
Hensel lifting, but we may avoid this problem with a parallel version of our algorithm, as explained 
in Section I4TT1 

In other words, our approach improve the practical complexity of absolute factorization of poly- 
nomials with integer coefficients. 

Notations 

K is a perfect field, K is an algebraic closure of K. 

F p = Z/pZ is the finite field with p elements, where p is a prime integer, 
tdeg / is the total degree of the polynomial /. 



1 Absolute irreducibility test and Newton Polytope 

Any implementation of an absolute factorization algorithm needs to first check if the polynomial is 
"trivially" absolutely irreducible. That is to say, test quickly a sufficient condition on /: when the 
test says yes, then / is absolutely irreducible and the factorization algorithm can be spared. The test 
should be fast and should, in "most" cases (i.e. with a good probability) say yes when the polynomial / 
is irreducible. For instance, for polynomials of degree 100, one might expect that such a test runs 100 
time faster than a good general factorization algorithm. This is indeed the case for the test presented 
in this section : fo r a polynomial of degree 100, absolute factorization algorithms (e.g. the ones in 



Chezd (l2004al) andlch eze and Lecerfl (12007^ require 20 seconds to decide irreducibility while our test 



answers after only 0.07 seconds. 

The absolute irreducibility test presented in this article is based on properties of the Newton 
polytope of a polynomial that we now review. 

Definition 1. Let f(X,Y) = £\ . c hJ X l Y^ e K[X,Y]. The Newton polytope of /, denoted by P f , 
is the convex hull in R 2 of all the points with Cij ^ 0. 

A point is a vertex of Pf if it is not on the line segment of any other two points of the 

polytope. □ 

Remember that a poly tope is the convex hull of its vertices. 

We refer to iGad (|200lh for basic results on absolute irreducibility and Newton polytopes and also 
for an interesting short history which goes back to the famous Eisenstein criterion. 

Definition 2. Denote by ji), ■ ■ ■ , & Z 2 the vertices of Pf. We say that condition (C) is 

satisfied when gcd(ii, ji, . . . ,ii,ji) = 1. □ 

The aim of this section is to prove the following criterion. 

Proposition 3 (Absolute irreducibility criterion). 

Let f(X,Y) be an irreducible polynomial in K[X, Y]. If condition (C) is satisfied then f is abso- 
lutely irreducible. 

Our statement in Proposition[3]bears similarities with one of Gao's result (|Gaoll200ll ); but it differs 
since Gao assumed that Pf should be contained in a triangle when we assume that / is irreducible 
in K[X, Y]. Although, our condition seems a strong th eoretical hypothesis , in p ractice we can check 
it very quickly thanks to the algorithms developed in Bostan et al.1 ( 2004 ) and Lecerfl (2006). The 



advantage of our criterion is that it applies to a larger variety of polytopes. 

We first recall an important lemma about absolute factorization of (rationally) irreducible poly- 
nomials. 

Lemma 4. Let f G K[X, Y] be an irreducible polynomial in K[X,Y], monic in Y: 

n-l 

f(X,Y) = Y n + Y / E "ijX'Y*- 

k=0 i+j=k 
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Let f = fi ■ ■ ■ f s be the monic factorization of f by irreducible polynomials fi in K[X, Y] . Denote by 
L = K[a] the extension o/K generated by all the coefficients of fx- Then each fi can be written: 

m — 1 m—1 

MX, y) = y™ + E E °%i xiYj = ym + E E KM)x 1 y\ (i) 

fc=0 i+j=k k=0 i+j = k 

where bij € K[Z], deg z (bij) < s and where ai,...,a, are the different conjugates over K o/ a — 
ax. □ 



See (jRupprechti I2004L Lemma 2.2) for a proof. 

As a corollary the number of absolute factors is equal to [L : K] . 

In order to prove Proposition [3J we introduce the Minkowski sum and its properties concerning 
polytopes. 

Definition 5. If Ax and A 2 are two subsets of the vector space R™, we define their Minkowski sum 
as 

A x + A 2 = {ai + a 2 |oi € Ai,a 2 € A 2 }. □ 
Lemma 6 (Ostrowski). Let f,g,he K[Xx,X 2 , X n ] with f = gh. Then P f = P g + P h . 
Proof. See lOstrowskl(ll97.^ . □ 



In particular (|SchneiderLfl993l) . if we sum up s times the same convex poly tope A, then we have 
that 

A-\ h A = s- A, 

" v ' 

s— times 

where s- A — {s-v \ v € A}. Furthermore the vertices {vi, . . . ,vi} of s-A are exactly V{ — s-Wi, where 
{wi, . . . ,wi} is the set of vertices of A. 

We now consider the irreducible polynomial / e K[X, Y] and its absolute factors fi,...,f s £ 
K.[X, Y]. Observe that thanks to Lemma HI we have that Pf i — Pf, for every couple of indexes 
i,j e {1, . . . ,s}. 

We can then easily prove Proposition [31 

Proof. Suppose that / is not absolutely irreducible. Let fx, ■ ■ ■, fs be the absolute factors of /. For 
what concerns the Newton polytopes, we have that 

Suppose in particular that the vertices of Pf ± are Then we have that the vertices 

of Pf are {(s • ix, s ■ jx), ■ ■ • , (s ■ ii, s • ji)}. But then condition (C) is not satisfied. □ 

Corollary 7. The number of absolute irreducible factors of a rationally irreducible polynomial f(X, Y) G 
K[X, Y] divides gcd(ii,ji, . . 

Proof. This is a consequence of the proof of Proposition [3J □ 

As all the arguments we used in this section extend to Newton polytopes in any number of variables 
we get: 

Corollary 8. Proposition^ holds for a polynomial ring with any number of variables. □ 
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2 Evaluation of our irreducibility criterion 



In Proposition [31 we established the validity of our criterion. In this section we address the natural 
question: does condition (C) happens frequently ? 

When the polynomial / is dense, then the coordinates of the vertices of Pf are (0, 0), (n, 0), (0, n), 
thus condition (C) is not satisfied and we cannot apply our test. However when / is sparse, in "most" 
cases, the Newton polytope is not the triangle of the previous situation and a direct use of Proposition 
[3] can quickly detect if / is absolutely irreducible. 

We first provide time tables and statistic evidences of the efficiency of our criterion applied to a 
sparse polynomial f(X, Y) £ Z[X, Y]. Then we consider its application to dense polynomials. In that 
case, modular computations are used to force a sparsity condition on a reduced polynomial modulo 
some prime p. 



2.1 Statistics for a direct use of the test for sparse polynomials 

To check the previous claim, we have constructed randomly 1000 polynomials of total degree n and ap- 
plied our test. Our test is implemented in Magma and available at: |http: / /www.math.univ-toulouse.fr/^ cheze/ 
The following table presents the obtained statistical results. 

The entries are the degree n and a sparsity indicator Prop. When its value is Prop = 1 (respectively 
Prop = 2), each polynomial has about n(n + l)/4 (respectively n(n + l)/6) non-zero coefficients 
randomly chosen in [— 10 12 ; 10 12 ] and n(n + l)/4 (respectively n(n + l)/3) coefficients randomly chosen 
equal to zero. The outputs are: the number Success of absolute irreducible polynomials detected by 
our test, and the average running time T av (in second). 



n 


Prop 


Success 


T 


50 


1 


819 


0.0134 


50 


2 


943 


0.0122 


100 


1 


832 


0.0787 


200 


1 


849 


0.6023 


200 


2 


948 


0.4432 



This table shows that our test is well suited for sparse polynomials. 



2.2 Irreducibility test with modular computations 

Our aim is to construct a sparse polynomial associated to a dense polynomial, "breaking" its Newton 
polytope. For that purpose, we recall an easy corollary of Noether's irre ducibility theore m. For a 



statement and some results about Noether's irreducibility theorem see e.g. iKaltofen (1995). 



Proposition 9. Let f{X,Y) G Z[X,Y] and f{X,Y) = f mod p, f G ¥ p [X,Y]. 

If tdeg (/) = tdeg (/) and f is absolutely irreducible, then f is absolutely irreducible. □ 

Now, even if / is dense, the idea is to choose p in order to force / to be sparse. Then we apply 
the test to / instead of applying it to /. 

Let Oi,.. . ,a r be the coefficients corresponding to the vertices of Pf and L = [p\, . . . ,pi] be the 
list of the primes dividing at least one of the a;. Remark that: 

Mpi £L, Pf ^ Pf mod Pi . 

Thus even when / is dense, if the coefficients a\, . . . , a r are not all equal to 1, we can get polynomials 
/ mod pi such that P f mo( j Vi is not the triangle with vertices (0, 0), (0, n), (n, 0). In Section |2~31 we 
will see that a linear change of coordinates permits to deal with the remaining case. 

Example: f(X, Y) = Y 3 + X 3 + 5X 2 + 3Y + 2. Figure [1] clearly illustrates the effect of a reduction 
modulo p = 2. 
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Figure 1: Newton polytopes of / and / mod 2 



Therefore, thanks to Proposition [3] and Proposition El absolute irreducibility can be tested with a Las 
Vegas strategy (i.e. the output of the algorithm is always correct). However the output can be "I 
don't know". More precisely: 

For each p € L, test the absolute irreducibility of / 6 F P [X, Y] with Proposition 02 and conclude with 
Proposition [5] 

Newton-polytop-mod algorithm 

Inputs: f(X,Y) G Z[X,Y], irreducible in Q[X,Y]. 
Outputs: "/ is absolutely irreducible" or "I don't know". 

1. Compute Pf and the list L of the primes dividing a coefficient corresponding to a vertex of Pf. 
Initialize test:=false: i := 1: 

2. While(test=false) and (i < \L\) do p := L[i]; 
If tdeg(f mod p) = tdeg(f) then 

Compute Pf mod p . 

If / mod p satisfies condition (C) then 

If / mod p is irreducible in F p [A, Y] then test:=true; End If; 
End If; End If; i:=i + l End While: 

3. If (test = true) then return "/ is absolutely irreducible" else return "I don't know" End If: 

The following table shows that this algorithm is quite efficient. We constructed 1000 polynomials in 
Z[X,Y] of total degree n, with random integer coefficients in [— 10 12 ; 10 12 ]. All these polynomials are 
dense. For each polynomial we test its absolute irreducibility with the previous algorithm. Success is 
the number of absolute irreducible polynomials detected with this algorithm. T av (respectively T max , 
T m in) is the average (respectively maximum, minimum) timing in second to perform one test. 



n 


Success 


T 

av 


T 

± max 


J- ram 


10 


1000 


0.0041 


0.33 





30 


1000 


0.0113 


0.56 





50 


1000 


0.0252 


0.59 


0.009 


100 


1000 


0.1552 


0.66 


0.081 


200 


1000 


1.7579 


3.22 


0.701 



2.3 Modular computations and change of coordinates 

A last task is to deal with polynomials whose coefficients are 0, 1 or —1 like f(X, Y) = X n + Y n + 1, 
because in that case the Newton polytope gives no information, even when one looks at the modular 
reduction / mod p. The natural strategy is to perform a linear change of coordinates in order to 
obtain, after reduction, a polynomial satisfying condition (C). This is applied in the next algorithm. 
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Modular computation is performed in F p where p is a prime between 2 and some value, here fixed 
to fOf. 

Newton-Polytop-mod-chg-var algorithm 

Input: f(X,Y) € Z[X,Y], irreducible in Q[X,Y}. 
Output: "/ is absolutely irreducible" or "I don't know". 
For each p prime between 2 and 101 do: 
For (a, 6) 6 F 2 , do 

f a ,b{X,Y) =f(X + a,Y + b) modp; 
If tdeg (f a . b ) = tdeg (/) then 

If fa,b satisfies condition (C) then 

If fa.b is irreducible in F p [A, Y] then return 
"/ is absolutely irreducible"; 

End If; End If; End If;End If; End For; End For; 
Return "I don't know". 



This algorithm generalizes a test given by|Ragoi(2002) based on the following classical property. 
Fact: Let f{X,Y) G K[A. Y] be an irreducible polynomial in K.[X, Y]. If there exists (a, 6) £ K 2 
df df 

such that f(a,b) = and ~Q~^( a 'b) ^ or ~Q^?( a '^) ^ ®> then f is absolutely irreducible. 

Ragot's algorithm tests if / mod p has a simple root in ¥ p . Remark that / has a simple root 
if and only if after a linear change of coordinates, which brings this root at the origin, the Newton 
polytope of / has at least one of the points (1, 0) and (0, 1) as vertex, while (0, 0) is not a vertex. 
In that case, condition (C) is satisfied; thus Ragot's test is weaker than our test. 



At http://www.mip.ups-tlse.fr/^cheze/, we listed an example of polynomial for which absolute irre- 



ducibility is immediately detected by our algorithm reducing modulo p = 2, while Ragot's test needs 
to reduce and check iteratively for all primes until p = 73. 

Let us remark that thanks to the following proposition, for p > (n — l) 4 our probabilistic test 
becomes deterministic. 



Proposition 10 ([Ragotl (|l997t ). Prop. 4.4.3 page 79). Let f{X,Y) £ ¥ P [X,Y] be an absolute 



irre- 
ducible polynomial of total degree n. If p > (n — l) 4 then f has simple roots in¥ p . □ 

Indeed, if we have a simple root then after a change of coordinates we get a polynomial satisfying 
Ragot's test and thus satisfying condition (C). However, in practice, a probabilistic approach with a 
small prime is much faster. 

We only considered the case of integer polynomials, however our tests can be extended to the case 
of polynomials with coefficients in a commutative ring. In this case, the computation modulo a prime 
number will be replaced by a computation modulo a prime ideal. The algorithms can also be extended 
to the case of polynomials with N variables, in which case the probability of success will increase with 
N. Indeed, there are more chances to obtain a gcd equal to 1 with more coordinates. 



3 A toolbox for an absolute factorization algorithm 



We aim to build a factorization algorithm by extending the analysis and strategy developed for the 
previous irreducibility test. We keep the notations introduced in Section [1] and specially in Lemma [4] 
A main task is to describe an algebraic extension L = Q(a) of Q which contains the coefficients of a 
factor fx of /. 

This kind of strategy was already develo ped in the TKTD algorithm; TKTD is an a crony m for 
Trager/ Kaltofen/Traverso/Dvornicich, (see Dvornicich and Traverse! (jl989h . Kaltofen ( 19851 ) and 



Tracer <|l985h ). The result of the TKTD algorithm is an algebraic extension L in which f(X,Y) 



factors. Usually this extension is too big, that is to say: the degree extension of L is not minimal. 

We aim to reach the same goal, obtain an algebraic extension in which f{X, Y) is reducible, but 
the extension we will find is smaller, in fact minimal, and so more suitable for the computation of the 
factorization. 



G 



3.1 Algebraic extensions and primitive elements 

We can describe the extension L of Q with a primitive element. Let us see that, generically, L = 

Q[/i(^o,yo)]. 

Lemma 11. Let f(X,Y) G Z[X,Y] be a rationally irreducible polynomial (i.e. over Q) of degree n. 

Let fi(X,Y) be an absolute irreducible factor of f{X,Y), deg f\{X,Y) = m. 

For almost all (xo,yo) G Z 2 we have L = Q(/i(xo;2/o))- 

More precisely, the following estimate on the probability holds: 



p({(*o,ifo) I L = Q(/i(aj , »)))}) > 1- with s:= n/m, 

where S is a finite subset o/Z. 



Proof. We denote by djj the coefficients of /i, so L = Q(ajj). Let 07, (1 < / < s) be s independent 
Q-homomorphisms from L to C. 
Hence we have: 

Vw 7^ u, there exists (i,j) such that o~ u (a-i,j) 7^ cr„(<ii,_y). (*) 

We consider D(X,Y) = (£ij K - a v ){a^)X^^ 

Property (*) implies that D(X,Y) 7^ 0. Then there exists (xo,yo) S ^ 2 such that D(xo,yo) 7^ 0. 
This means: for all u 7^ v, cr u (f i(%o, Ho)) 7^ fuf/iOcOiJ/o))- Thus fi(xo,yo) is a primitive element of 
L and this gives the desired result. 

The probability statement is a direct consequence of Zippel-Schwartz's lemma, applied to D(X, Y). 
whose degree is bounded by (ms(s — l))/2 = (n(s — l))/2. □ 

Remark that the polynomial D(X, Y) appearing in the previous proof is also the discriminant, 
with respect to Z, of the 3-variate polynomial F(X, Y, Z) = Wj{Z — fj(X, Y)). F has coefficients in 
Z because its coefficients are invariant when we permute the fj. 

3.2 Number fields and p-adic numbers 

Lemma 12. Let M(T) G Z[T] be a polynomial and p a prime number such that p divides M(0) and 
p > deg(Af). 

Then there exists a root in Q p of M (T) , considered as a polynomial in Q p [T] . 

This lemma allows us to consider a number field Q(a) as a subfield of Q p , for a well-chosen prime 
p. Indeed, if q(T) is the minimal polynomial of a, then with a big enough integer c we can find a 
prime number p such that the polynomial q(T + c) satisfies the hypothesis of Lemma [12j Thus we 
can consider a + c in Q p , then Q(a) C Q p . During our algorithm we are going to factorize f(X, Y) 
mod p. We can consider this factorization as an "approximate" factorization of / in <Q>(a) with the 
p-adic norm. Then this factorization gives information about the absolute factorization. 

Proof. Since M (0) = mod p, is also a root of M\{T) = gc d 7 jMffjji Frfi m ^p- As p > deg(M) we 
have M[(0) ^ in F p and we can lift this root in Q p by Hensel's liftings. This gives a root of M\(T) 
in Q p , thus a root of M(T) in Q p . □ 

3.3 Choice of p 

Lemma 13. Let f(X,Y) G Z[X,Y], deg f(X,Y) > 1 and let B be a positive integer. There exist 
{%o ! Do) S Z 2 and p G Z smc/i that p divides f(xo,yo) and p does not divide B. 

Proof. We can reduce to the case of one variable and use the classical argument of Dirichlet for proving 
that the set of prime numbers is infinite. 

Consider the polynomial f(X) G Z[X], deg/ > 1. Consider x\ such that the constant term 
c := f(x\) is not zero. 
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Set f(X) = f(X - xi), so c is the constant term of f(X). Consider f(cBX) = c(l + BXq(X)), 
where q(X) G 7L\X\ is not zero (otherwise degf < 1). We can find xo G Z, xo 7^ such that 
Bxo<z(xo) 7^ 0. Then, a prime p dividing 1 + Bxoq(xo) does not divide B and we are done. □ 

Definition 14. We say that the prime integer p gives a &ad reduction of f(X,Y) if the number of 
absolute factors of /(X, Y) mod p differs from the number of absolute factors of f(X, Y). □ 

Proposition 15. Let f(X,Y) be a rationally irreducible polynomial, monic in Y. Then there is a 
finite number of prime integers p giving a bad reduction of f(X,Y). 

Furthermore, if d{X) = discyifiX, Y)), d\{X) = square-free part of d{X) and D — discx{d\{X)), 
the set of prime integers p giving a bad reduction of f is contained in the set of prime divisors of D. 



Proof. The finiteness of the set of p giving bad reductions comes from a theorem of iNoetherl (|1922| ). 
For the characterization using D, we can say with other words that f(X,Y) has a good reduction 
mo dp if d(X) an d d(X) mod p have the same number of disti nct roots. For the proof of this fact, 
see Traeerl (jl989l ) . Finally, for another proof, see Zannier ( 1997 ) . □ 



3.4 Recognition strategy 

We assume that we chose a good prime p, such that tdeg (/) = tdeg (/ mod p) and / mod p factors 
as f(X, Y) = F( x ) (X, Y) ■ (X, Y) mod p where is exactly the image mod p of an absolute 
factor fi of f. 

In order to find the splitting field of f(xo, Y), relying on Proposition QTJ we need to compute q(T), 
the minimal polynomial with integer coefficients of a := fi(xo,yo). 

Starting from a factorization f(xo, Y) — F^(x , Y)G^' (xq, Y) mod p, we lift it through Hensel 
Lifting to the level of accuracy p x . We then consider the p-adic approximation a := F^ {xo,yo) of a. 
Using a "big enough" level of accuracy A, we can compute the minimal polynomial of a from a. 

Proposition 16. Consider a — F^'(xo, yo)> < a < p x — 1 constructed above, a positive integer Q 
bounding the size of the coefficients of q(T), Q > ^(T)!^, and a positive integer A > log p (2 s / 2 (s + 

l) s Q 2s ). 

Then we can compute the minimal polynomial q(T) of a using the LLL algorithm on an integer 
lattice whose basis is given using a and p x . 

Proof. We apply the same construction of Ivon zur Gathen and Gerhard! (|2003l . Section 16.4) for de- 
tecting rational factors of univariate polynomials. 
We consider the polynomials 



{T i (T-a)\i = 0,...,s-l}U{p x }. 



We write as usual 



T\T -a)= T l+1 -aT 1 

3=0 

where, in this case, tj 7^ for j G {i + 1, i} and tj = otherwise. Then the associated vector for the 
polynomial T' l (T — a) is 

bi = (t s , ■ ■ ■ , to). 

For the constant polynomial p x , we associate the vector b = (0, . . . ,0,p x ). We can construct the 
(s + 1) x (s + 1) matrix B whose columns are the bi, i = 0, . . . , s — 1 and b: 



D 



1 








.. 











— a 


1 





.. 














—a 


1 


.. 

















—a 


1 .. 




















.. 


1 

















.. 


—a 


1 














.. 





—a 


p x 
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If we consider a point g of the integer lattice f\(B) C R s+1 generated by the columns of the matrix 
B, we can write its components with respect to the standard basis of R s+1 

s-l 

.9 = X! gibi + 9b= (g s -i,g s -2 - ag s -x, ...,g - ag u gp x - ag ) 

i=0 

and associate a polynomial: 

G(T) = g s ^T s + ( 3s _ 2 - ag^T*- 1 + • • • + (g - a 9l )T + ~gp x - ag = 

s-l 

= S(T)(T -a) + gp x with S(T) = J^ftT*. 

2=0 

So if g G /\{B), the associated polynomial G(T) has degree < s and it is divisible by (T — a) modulo 
V 1 - 

The vice versa holds: 

If G(T) is a polynomial of degree at most s and G(T) mod p x is divisible by (T — a), then we can 
write 

G(T) = S* (T) (T - a) + R* {T)p~< with deg S*(T) < s — 1 and deg R* (T) < s. 

Using Euclidean division, we obtain R*(T) = S**(T)(T -a) + Rp 1 with deg S** < s - 1 and R a 
costant. We define S'(T) := 5*(T) + p 7 S'**(T). We then have that 

G(T) = S{T)(T-a)+Rp-', 

that is, G(T) can be written as a point of the lattice f\(B). 

So if we consider the matrix B and we apply the LLL algorithm, we obtain as first vector of the 
reduced basis a "short'Vector representing a polynomial G(T) with "small" norm such that G(T) has 
degree s and G(T) mod p A is divisible by ( T-q ). Using the hypothesis A > log p (2 s2 / 2 (s + l) s Q 2s ) 
we can apply Ivon zur Gathen and Gerhard] ( 20031 . Lemma 16.20): we then have that q(T) and G(T) 
have a non-constant gcd. But since q(T) is irreducible and degq(T) = deg G(T), we have that 
q(T) = G(T). □ 

To establish the level of accuracy A, we need a bound on the size of the coefficients of the minimal 
polynomial of a, q{T). Remember that 

s 

q(T) = Y[(T - oti) =T S +a 1 (a) + --- + cr s _i(a)T + a s (a), 
i=i 

where (Ji{a) is the i-th symmetric function in the a = ct\, a.2, ■ ■ ■ , oi s . 
Observe that 

m m 

Wk(a)\< e K ( i)i---K (fe) i< e niyj (l) i---niyj (fc) i' 

TES k T £S k j=l j=l 

where f % {x , Y) = UT=i ( Y ~ V?) ^ /(*o, Y) = UUi M*o, Y). 

As a bound on the coefficients of f(xo, Y) gives a bound on the yy 1 ( von zur Gathen and Gerhard! . 



20031 ). a bound on the coefficients of f(xo, Y) gives a bound for ^(T)^. 



In practice, for "early detection", we rely on Proposition [TBI replacing Q by 

Qi = WfixcY)^. 
Remark 17. If f(X,Y) is not monic, then we have to face two problems: 

1. Leading coefficient problem: we cannot apply Hensel lifting in its "classical" form, because we 
need to have a factorization f{xQ,Y) — F' 1 ' (xq, Y)G^\xo, Y) mod p in which F^'(xq,Y) or 
G^ (xq, Y) is monic. 
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2. In practical use of this construction of the minimal polynomial of a, we will avoid to lift the 
factorization until the level A of Proposition]]]^ (this bound is usually very pessimistic) . However, 
in this way we are not sure that the polynomial G(T) is actually q(T). We then need a quick 
method to check if we found a good candidate to define the field extension or if we have to lift 
the factorization to a higher level of accuracy. 

Consider f(x ,Y) = J2i=o ■ 

For what co ncerns the leading coefficient problem, we can simply consider the "modified" linear 
Hensel Lifting iGeddes et al\ , 199 A . Algorithm 6.1). In this way we can lift the factorization modulo 



p, but the coefficients involved in the computations are bigger, since actually we lift a factorization of 
4>n ' fixQ, Y), obtaining a factor that we callF {x \Y). 

For what concerns the second problem, we have to understand how the roots of a factor of f(xo, Y) 
are in connection with the coefficients of q{T) and f\{Y), that is the factor of f(xo,Y) that we obtain 
after the "modified" Hensel Lifting. We call q s the leading coefficient of the polynomial q(T). 

If fi(xQ,Y) is the factor of f(xo,Y) we are looking for, then the product of its roots is simply 

P ■■= (-i) deg/l(r) /iM/0«. 

Then the product of the conjugated of ft is simply q(0)/q s , but this is also the product of all the 
roots of f(xo,Y). So we have the following relation = (— l) s ^ x °' Vo ^ . 

When we apply the LLL algorithm to f\(B) we can then proceed as follows: if the obtained poly- 
nomial G(T) satisfies 

G(0) = /^. /(so.l/o) ^ ^ lmdmg coe ffi cient f G{T) (*) 

G s 4>n 

then we will try to factor f{xo,Y) in the algebraic extension defined by G(T), that is Q[T]/G(T). If 
G(T) does not satisfy d*]), then we have to rise the level of approximation of the Hensel lifting and 
then apply again LLL to the new lattice and test again. 

In this way we have a necessary condition that can help us to recognize the minimal polynomial of 

a. 



4 Absolute factorization algorithm 

We use the results and methods of the previous section to compute an absolute factor f\ of / (i.e. a 
representation of the field L of its coefficient and the coefficients). 

To ease the presentation, we rely on the practical evidence that for random integer value xq, 
f(xo,Y) is irreducible. In Section [4.21 we will present a variant using a weaker condition. 

Abs-Fac algorithm 

Input: f(X, Y) e Z[X, Y], irreducible in Q[X, Y] of degree n, a finite subset S of Z 2 . 
Output: q(T) £ Q[T] minimal polynomial of a defining the minimal algebraic extension L = Q(a) = 
®[T]/q(T) and f x {X, Y) e h[X, Y] an absolute irreducible factor of /, or "I don't know". 
Preprocessing: Choose (xo,yo) & S 2 , such that f(xo,Y) is irreducible. If all of the points were 
used, then return "I don't know". 

1. Choose a prime p dividing f(xo, yo) such that tdeg (/ mod p) = tdeg (/). 

2. Factorize / in ¥ p [X,Y}. 

If / mod p is irreducible and satisfies an absolute irreducibility test then Return "/ is absolutely 
irreducible", /i := / and q(T) := T. 

If / mod p is irreducible and not absolutely irreducible then go to the Preprocessing step (choos- 
ing a point (xo,yo) not yet used and a different prime p). 

Else f(X,Y) = FW(X,Y) ■ G^(X,Y) mod p where F^ is one of the irreducible factors in 
F P [X, Y] with smallest degree m, check that s :— tdc ^ i ^' ) is an integer else go to the Preprocessing 
step (choosing a point (xo,yo) not yet used and a different prime p). 
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3. Lift the factorization to f(x ,Y) = F^(x ,Y)G^(x ,Y) mod p ; A is chosen according to 
Proposition \W\ and Remark [T7] 

4. Define a := F^(x ,y ) E Z/p x Z. Find, using the lattice described in Section 13.41 and the LLL 
algorithm, the polynomial q(T). If q(T) does not satisfy (gj) or it is not irreducible, go back to 
step © and double A. 

5. Denote by a a root of q(T) (i.e. the command RootOf in Maple) then factorize f(xo,Y) in 
Q(a)[F] = li[Y] and denote by Fi(xq, Y) a factor with degree m and with Fi(xo,yo) = a. 

If we do not find such a factor, then go to the Preprocessing step (choosing a point (3:0,2/0) n ot 
yet used and a different prime p) . 

6. Perform m times X-adic Hensel liftings on f(xo,Y) — Fi(xq,Y)F2(xq,Y) to determine a can- 
didate for fi(X,Y) in h[X, Y] and check that it divides f(X,Y). Else go to the Preprocessing 
step (choosing a point (xo,yo) not yet used and a different prime p). 

Return q(T) and fi(X,Y). 

Proposition 18. The algorithm gives a correct answer. 

Proof. Since it is a Las Vegas algorithm, this algorithm is probably fast and always correct but the 
answer can be "I don't know". So we just have to check that a given positive answer is correct. 

The starting point of the proposed algorithm, as in the irreducibility test, is to determine a prime 
p such that the reduction modulo p kills the evaluation of / on an integer point (xo,yo). Then the 
constant term of the minimal polynomial of a := fi(xo,yo) vanishes modulo p. Such a p is easily 
found. However we rely on randomness to expect with a good probability that L = Q(a) and that / 
has good reduction modulo p (using Proposition [TS] and Lemma I12[) . 

In the algorithm described above, we inserted some checks and a loop to change p if it is an 
"unlucky" choice. The algorithm can be made deterministic (but less efficient) by considering a large 
testing set for (xo,yo) & n d take p not dividing a huge constant B computed a la Trager, to avoid bad 
reduction. We would be able to do this thanks to Lemma IT3"1 

The output of the algorithm, the factor fi, is irreducible in L,[X, Y]. Indeed, fi(xo, Y) = F\{xq, Y) 
and Fi(xq,Y) is irreducible in L[Y] because of the irreducibility of f(xo, Y) in the Preprocessing Step. 
Furthermore, the extension L is minimal. Indeed, at the end of the algorithm we have degy f\ = m, 
deg q — s and s.m = n, see the definition of s in Step [5] □ 

Remark: f\ is irreducible modulo p and f\ modulo p generically satisfies condition (C), so Propo- 
sition [3] guaranties the absolute irreducibility of fx in h[X, Y], 

4.1 Parallel version of the Algorithm 

In step (O of the Abs-Fac Algorithm we perform a factorization of f(xo,Y) in the polynomial ring 
L[y]. Then in Step ((5]) we use Hensel liftings to reconstruct the factor f\. If we use parallel calculus 
in these steps, we can perform (m -I- 1) Lagrange interpolations to reconstruct the factor f\. We have 
to assume that in the factorization of f(xo,Y) in L[Y] there is only one factor of degree m. This is 
not always verified, for instance if the extension L is normal we may have several factors of the same 
degree m. 

We write the absolute factor f\ as 

m—1 m — 1 

h(x, y) = r + E a $ xiYj = ym + E 6 >< 

k=0 i+j=k j=0 

where bj(Z,X) € Q[Z,X] of degree <m — j and a is a root of the polynomial q(T) found in step (4). 
We then want to find the polynomials bj(a, X). 
We substitute steps ([5]) and ((6]) with the following procedure: 
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(5bis) Denote by a a root of q(T) (i.e. the command RootOf in Maple). 

Choose points x%, . . . , x m £ Z, i, ^ xo for i = 1, . . . , m such that /(xj, y) is rationally irre- 
ducible. 

Compute the factorization of f(xi,Y) in L[y] and choose -Fi.o(y) from the factorization of 
f(xo,Y) as in step (5) of the algorithm and Fij(Y) a factor of minimal degree m in the factor- 
ization of f(xj,Y). 

(6bis) Write F ltj {Y) as follows 

m 

Fx j = ^2'fi,jY j with 7j G L. 



We th en construct the polynomials bj (a, X) of degree j using Lagrange interpolation (jBurden and Faires 
ll993L Section 3.1) on the set of nodes 70^, . . . ,7j,j. In this way we determine a candidate for 
fi(X,Y) in h[X, Y]. We check that it divides f(X,Y). Else go to the Preprocessing step 
(choosing a point (#0,2/0) not yet used and a different prime p). 

The advantage of steps (5bis) and (6bis) is that in this way this part of the algorithm can be 
naturally parallelized and do not saturate the memory. 

4.2 Hilbert's Irreducibility Theorem 

In the preprocessing step we check that f(xo,Y) is irreducible. This situation happens very often 
in practice. With a more theoretical point of view, we know that there exists an infinite number 
of xo G Z such that f(xo,Y) is irreducible, thanks to Hilbert's irreducibility theorem. There exists 
bounds for this theorem but unfortunately they are very big, see iDebes and Walkowiak" 



Here we now use a weaker condition on the choice of (xo , yo ) that allows us to reconstruct the 
factor fi(X,Y) even if f(xo,Y) is not rationally irreducible. 

Choose an integer point (xo,yo) <= ^ 2 such that xo is not a root of the polynomial A(X) = 
discy(/(X, y)) and choose an integer p such that A(xo) mod p ^ 0. With this choice of (xo,yo) we 
are sure that the univariate polynomial /(xo,y) has no multiple roots in Q nor in ¥ p . 

We do not assume that /(xo,y) is rationally irreducible. We computed the factorization mod p 

f(X, Y) = F{X, Y) ■ G{X, Y) g V P [X, Y] deg F - m. 

Thanks to the choice of p as in step (TTJ) of the algorithm, F(X, Y) should be equal mod p to the 
researched absolute factor fi(X, Y) of /. 

After applying step ([5]), we get the following factorization 

/(x ,y)=Vi(^)--^r(^) eQ(a)[y] (2) 
and need to find the set of indexes JC{l,,..,r} such that 

n^on = /i(z ,y). (3) 

iei 

We reduce mod p the equalities © and ([3]) . We obtain that j G I if and only if tpj mod p divides 
F(xo,y) mod p. 



5 Examples and practical complexity 

We tested our algorithm on several examples, using (probably non-optimal) routines implemented in 
Maple 10. 

We focused on the construction of the minimal polynomial q(T) of a, that is on the construction 
of the splitting field Q(a); in fact the last part of the algorithm (X-adic Hensel lifting or Lagrange 
interpolation) depends strongly on the used software. 
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The procedures, data and Maple files of several examples are available at 



http:/ /math, unice.fr/~cbertone/ 



Here we list some remarks about both the strong and the weak points of our algorithm arising 
from the computed examples. 

• In general the algorithm is quite fast: it took around 30 sec (factorization mod p, Hensel lifting, 
construction of the minimal polynomial) to compute the polynomial q(T) starting from a polynomial 
of degree 200, with 10 absolute factors of degree 20 each. 

• If possible, it seems to be a good idea to choose a "small" prime p (in this way we can gain some 
time in the mod p- factorization) . If the integers dividing f(xo,ya) are quite big, it may be better to 
go back to the preprocessing step. 

• On examples of high degree, the most of the time is spent for the construction of the minimal 
polynomial from the approximation a. In our tests, we used the LLL function of Maple, but we may 
speed up this part of th e co mputation using more performing algorithms for LLL (for example, see 
iNeuen and Stehld (l2005h and lSchnorrl ()2006h\ 

• For the computation of the p-adic Hensel Lifting, we have implemented a small procedure in 
Ma ple, both for the linear and the qu adratic one, which can deal also with non-monic polynomi- 
als (von zur Gathen and Gerhardl [2003L Algorithm 15.10). 



Benchmark 

We consider random polynomials g\ £ Q[x,y,z] and 52 £ of degrees d\ and g?2 resp. both 

rationally irreducible. We compute f(X,Y) — Res z (gi, 32)- In this way we obtain an irreducible 
polynomial f(X,Y) £ Q[x,y], monic in y, of degree d\ ■ di with di absolute irreducible factors each 
of degree d\ . 

The polynomials g\ and gi used are listed in the file "Polynomials. mws". 

Here we summarize the time needed to obtain q{T), the minimal rational polynomial of a, such 
that the absolute factors of f(X, Y) are in L[x, y], L = Q(a) = Q[T]/q(T) and we made a few remarks 
about the strategy one may adopt (for instance the choice of the prime) . 

In almost all of the examples, we compute the Hensel lifting both with the linear and the quadratic 
algorithm, this is why we always chose as level of accuracy a power of 2. 

In the first 2 examples, we also computed the factorization of f(xo,Y) in Q(a). 

In the first example, we computed the factor fi(X, Y) using Lagrange Interpolation 

To repeat the examples, one need to change at the beginning of each Maple file the location of 
the file "proc.txt", in which there are (non-optimal) implementations for linear and quadratic Hensel 
Lifting (for non monic polynomials) and a procedure to compute the minimal polynomial of a p-adic 
approximation of a using the LLL algorithm. 

The names of kind "Examplel.2.mws" refer to the Maple files on the website. 

Example 19. f(X, Y) rational irreducible polynomial of degree 50 with 5 absolute factors of degree 
10. 

We need 1.5 sec to construct the example and factor /(0, 0). We construct the minimal polynomial 
defining the field extension for 2 different choices of p. 

Examplel.l.mws: we choose p = 11. 

• Time to factor f(X,Y) mod p: 0.131 sec. 

The estimation of the level of accuracy that ensures the correct computation of q(T) is in this case 
338; we choose to lift the factorization to the level p 256 . 

• Time to lift the factorization /(0, Y) = gi(0, Y)g2(0, Y) mod p to a factorization mod p 256 , 
using: 

Linear Hensel Lifting: less than 1 sec 
Quadratic Hensel Lifting: less than 0.07 sec. 

• Time to find the minimal polynomial of a through its approximation mod p 256 using LLL: 
0.22 sec. 
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We can complete the algorithm using steps (5bis) and (6bis): 
we choose 10 nodes X\ . . . , £10 randomly and factor the polynomials f(xj,Y) in Q(a)[Y]; the longest 
of these factorization takes about 219 sec. Then we use Lagrange Interpolation and obtain fi(X, Y). 

Example 1. 3. mws: if we use the software Pari GP, applying the function polred() to the obtained 
polynomial <?(T), we get qi(Z) which defines the same algebraic extension as q(T) but has smaller 
coefficients. In this way, the factorization of f(0,Y) in Q(a) took only 8 sec, but the computation of 
the polynomial qi(Z) in Pari GP took more than 360 sec! □ 

Example 20. f(X, Y) rational irreducible polynomial of degree 400 with 20 absolute factors of degree 
20. 

We need around 1260 sec to construct the example and factor /(0, 0). 

Example6.1.mws: we choose p — 53259165137. 

• Time to factor f(X, Y) mod p: 1924 sec. 

The estimation of the level of accuracy that ensures the correct computation of q(T) is in this case 
398; we choose to lift the factorization to the level p 256 . 

• Time to lift the factorization f(0,Y) — <?i(0, F)<?2(0, Y) mod p to a factorization mod p 256 , 
using 

Linear Hensel Lifting: less than 365 sec 
Quadratic Hensel Lifting: less than 39 sec. 

• Time to find the minimal polynomial of a through its approximation mod p 25e using LLL: 
1024 sec. 

In order to compare the time needed for the construction of q(T) computing modulo a "small" prime, 
we considered also the case with p = 89 dividing /(— 1, 0). In this case we obtained (Example6.2.mws): 

• Time to factor f(X,Y) mod p: 127 sec. 

The estimation of the level of accuracy that ensures the correct computation of q(T) is in this case 
2194; we choose to lift the factorization to the level p 1024 . 

• Time to lift the factorization /(0, Y) = gi(Q, Y)g2(0, Y) mod p to a factorization mod p 1024 , 
using 

Linear Hensel Lifting: 737 sec 
Quadratic Hensel Lifting: 24 sec. 

• Time to find the minimal polynomial of a through its approximation mod p 1024 using LLL: 
520 sec. □ 



For the detail of other examples, see http://math.unice.fr/~cbertone/ 



In the following table we resume the timings of a few more examples. 
• n = tdeg (/), s=number of absolute factors of /, m — n/s=degree of an absolute factor of /; 
p= prime integer, A = level of accuracy of Proposition 1161 A =chosen level of accuracy; 



• T\ — time to factor f(X, Y) mod p, T2 =time to lift the factorization to p x , T3 =time to find 
the minimal polynomial of a. 



Example 


n 


s 


m 


P 


A 


A 


Ti 


T 2 


n 


Example 1.1 


50 


5 


10 


11 


338 


256 


0.13 s 


0.07 s 


0.22 s 


Example 1.2 


50 


5 


10 


307 


141 


128 


0.13 s 


0.08 s 


0.4 s 


Example 2.1 


100 


10 


10 


7 


1105 


512 


3.4 s 


0.3 s 


2.25 s 


Example 2.2 


100 


10 


10 


655379 


160 


128 


6.2 


0.4 s 


5.7 s 


Example 3.1 


150 


15 


10 


7 


2246 


1024 


10 s 


1.08 s 


21 s 


Example 4.1 


200 


10 


20 


47 


853 


512 


33 s 


2.8 s 


14 s 


Example 4.2 


200 


10 


20 


114041 


282 


256 


128 s 


3.8 s 


30 s 


Example 5 


200 


20 


10 


7682833 


457 


256 


68 s 


3.8 s 


220 s 


Example 6.1 


400 


20 


20 


53259165137 


398 


256 


1924 s 


39 s 


1024 s 


Example 6.2 


400 


20 


20 


127 


2194 


1024 


127 s 


24 s 


520 s 


Example 7 


100 


20 


5 


7 


3029 


2048 


0.64 s 


1.25 s 


205 s 
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6 Conclusion 



In this paper we have presented a new approach to absolute factorization improving the use of classical 
tools, in particular the TKTD algorithm and LLL algorithm. 

In fac t , we have refined the main idea of the TKTD algorithm (jDvornicich and Traverse! ( 19891 ) . 
Kaltofen dl985h . iTraeeri dl985h ). because we construct a "small" algebraic extension field in which 



the polynomial f(X,Y) splits. However the degree of the extension constructed by our algorithm 
is minimal, i. e. the number of absolute factors. In the TKTD algorithm the degree of the used 
extension is the degree of the polynomial f(X, Y). 

Furthermore, we use the LLL algorithm in a new way to define the field extension, while its 
classical applications are on the coefficients of a univaria t e rati onal polynomial in order to factor it 
(jLenstra et al.L Il982h . or on the exponents (see Ivan Hoeiil (|2002h andlchezej ||2004al )). 

In our application, LLL is used on a lattice defined by s + 1 vectors, where s is the number of 
absolute factors of the polynomial, which is smaller than the degree of the polynomial to factor. That 
is why in our algorithm the use of LLL is not a bottleneck. 

Nevertheless, we ma y improve the fastn e ss of t he co mputations usi ng, if it will be available in the 
future, a fast LLL (see iNguen and Stehlel (120051) and [Schnorrl ( 20061) ^ and a good implementation 
of the Polred algorithm (jCohen and Diaz v Diaa . 119911 ). which allows a better presentation of the 
algebraic field extension. 

Our Maple prototype was able to deal with high degree polynomials (up to 400), which were so far 
out of reach of all other absolute factorization algorithm; furthermore it is very fast on polynomials 
of middle degrees (about 100). 

An efficient implementation of our algorithm will also n eed good p-adic and X-adic Hensel liftings. 
We expect, in a near future, that the library Mathemagix (jMathemagixl . 2009h will provide optimized 
implementations of these routines. Another point to improve is the parallel version of the algorithm, 
in order to be able to deal also with normal extensions of Q. 

Another related direction of research that we will soon explore, is extending some of these tech- 
niques to the decomposition of affine curves in dimension 3 or more. 
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